1.9

CVE-2008-3230

Exploit
The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file, possibly related to gstreamer, as demonstrated by lol-giftopnm.gif.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.329
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 1.9 3.4 2.9
AV:L/AC:M/Au:N/C:N/I:N/A:P
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://bugzilla.gnome.org/show_bug.cgi?id=542643
Exploit
http://secunia.com/advisories/31899
http://www.mandriva.com/security/advisories?name=MDVSA-2009:297
http://www.openwall.com/lists/oss-security/2008/07/13/3
http://www.securityfocus.com/bid/31234
https://exchange.xforce.ibmcloud.com/vulnerabilities/44210
https://roundup.mplayerhq.hu/roundup/ffmpeg/issue530
Exploit